SOPHIA GENETICS LIMITED
DL - HRS
Cloud-based Software-as-a-Service platform called SOPHiA DDM™ which enables healthcare institutions to get quick, robust insights from their data.
Features
- cloud-based Software-as-a-Service platform
- analyzing data from multiple modalities
- pseudonymization, anonymization, minimization and segregation o the data received
- Cloud-based storage
- Strict access control
- End-to-end encryption
- Variant calling and annotation
- Exploration and Interpretation
- Reporting
Benefits
- Access accurate data
- Maximize turnaround time
- Accelerate the launch of new precision medicine applications.
- Agile and scalable platform
- Develop novel in-house expertise
- Manage your costs
- Standardized, computed and analyzed to generate insights
- one of the largest networks of healthcare institutions
Pricing
£79 a unit
- Education pricing available
- Free trial available
Service documents
Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format,
email the supplier at ssevdina@sophiagenetics.com.
Tell them what format you need. It will help if you say what assistive technology you use.
Framework
G-Cloud 14
Service ID
4 7 9 9 3 0 7 8 0 0 2 4 9 5 8
Contact
SOPHIA GENETICS LIMITED
Simona Sevdina
Telephone: +44 7395 594261
Email: ssevdina@sophiagenetics.com
Service scope
- Software add-on or extension
- No
- Cloud deployment model
- Private cloud
- Service constraints
- No
- System requirements
-
- Microsoft Windows 7(64 bit) or later
- MacOSX 10.0 or later
- Microsoft Windows 10(64 bit) or later
- No additional plugins or software needed
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
- SG and/or its Affiliates offers support from Monday through Friday during regular business hours (in Central European Time / Eastern Standard Time) except during banking holidays.
- User can manage status and priority of support tickets
- No
- Phone support
- No
- Web chat support
- No
- Onsite support
- Yes, at extra cost
- Support levels
-
SG and/or its Affiliates will use reasonable commercial efforts to resolve Customer’s request as soon as practicable. Consistent with industry standards, requests are classified based on the following priority order for internal purposes only:
• P1 - Critical
• P2 - High
• P3 - Moderate • P4-Low
The priority will drive the response frequency and resolution efforts per applicable internal guidelines. - Support available to third parties
- No
Onboarding and offboarding
- Getting started
- Per the unique requirements of the project, a SOPHiA GENETICS Implementation Scientist or Field Application Specialist will deliver end-user or train-the-trainer style sessions. Training typically occurs via virtual training .
- Service documentation
- Yes
- Documentation formats
-
- HTML
- End-of-contract data extraction
- Upon Customer’s request to destroy or return Customer Data identified by Customer, the parties shall determine the conditions of such destruction or return, in accordance with applicable laws and regulations. SOPHIA GENETICS may retain the data for a longer period in accordance with Applicable Laws and regulations
- End-of-contract process
- Upon Customer’s request to destroy or return Customer Data identified by Customer, the parties shall determine the conditions of such destruction or return, in accordance with applicable laws and regulations. SOPHIA GENETICS may retain the data for a longer period in accordance with Applicable Laws and regulations
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Microsoft Edge
- Chrome
- Application to install
- No
- Designed for use on mobile devices
- No
- Service interface
- No
- User support accessibility
- None or don’t know
- API
- Yes
- What users can and can't do using the API
- Data uploader API
- API documentation
- Yes
- API documentation formats
-
- HTML
- API sandbox or test environment
- No
- Customisation available
- Yes
- Description of customisation
- Application can be customised by contacting SOPHiA GENETICS and explaining / detailing your need.
Scaling
- Independence of resources
- System is able to scale depending on usage.
Analytics
- Service usage metrics
- Yes
- Metrics types
- The users can see the number of analysis that has be run into SOPHiA DDM Platform.
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Staff screening not performed
- Government security clearance
- None
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
- European Economic Area (EEA)
- User control over data storage and processing locations
- No
- Datacentre security standards
- Managed by a third party
- Penetration testing frequency
- At least once a year
- Penetration testing approach
- Another external penetration testing organisation
- Protecting data at rest
-
- Physical access control, complying with SSAE-16 / ISAE 3402
- Encryption of all physical media
- Data sanitisation process
- Yes
- Data sanitisation type
-
- Explicit overwriting of storage before reallocation
- Deleted data can’t be directly accessed
- Equipment disposal approach
- A third-party destruction service
Data importing and exporting
- Data export approach
- Variant exports are available in csv, txt and xls format. Variant reports are available in json and pdf format. QA reports and QA metrics are available in pdf and csv formats. Coverage statistics flagged regions are available in txt format. Customisation of exports and creation of export scripts available upon request.
- Data export formats
- Other
- Other data export formats
- Standard VCF format (versions 4.1 to 4.3 and future versions)
- Data import formats
- Other
- Other data import formats
- Standard VCF format (versions 4.1 to 4.3 and future versions)
Data-in-transit protection
- Data protection between buyer and supplier networks
- TLS (version 1.2 or above)
- Data protection within supplier network
- TLS (version 1.2 or above)
Availability and resilience
- Guaranteed availability
- The platform and related services are available 24/7 including bank holidays, excluding scheduled or unscheduled maintenance or Microsoft Azure outages. A customised Service Level Agreement can be signed upon contract closure. Backups of the solution`s components are performed daily. The system deployed and managed by SOPHiA GENETICS is configured with a RPO of 24 hrs at the moment. However, this is subject to configuration and could be changed if required. According to Company's policy backups of the solution`s components are performed daily. .
- Approach to resilience
- The service is fully hosted by Microsoft Azure
- Outage reporting
-
Please refer to our SLA
https://www.sophiagenetics.com/wp-content/uploads/2024/02/Support-SLA_Jan-2024-1.pdf
Identity and authentication
- User authentication needed
- Yes
- User authentication
- Username or password
- Access restrictions in management interfaces and support channels
-
Segregation of duties is an organizational requirement defined in SG-01460 Information Security Governance Policy.
Roles are defined and reviewed such that they adhere with segregation of duties principles and privileged roles are managed with just-in-time principles through Azure Privileged Identity Management (PIM). - Access restriction testing frequency
- At least once a year
- Management access authentication
- Username or password
Audit information for users
- Access to user activity audit information
- No audit information available
- Access to supplier activity audit information
- No audit information available
- How long system logs are stored for
- At least 12 months
Standards and certifications
- ISO/IEC 27001 certification
- Yes
- Who accredited the ISO/IEC 27001
- BSI
- ISO/IEC 27001 accreditation date
- 18/11/2014
- What the ISO/IEC 27001 doesn’t cover
- It applies to the development production and worldwide distribution of reagents and web-based services for the analysis of genetics data and medical images.
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- No
- Cyber essentials plus
- No
- Other security certifications
- No
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
- ISO/IEC 27001
- Information security policies and processes
- SOPHiA GENETICS has an information security policy and associated procedures and processes that are approved by management, implemented, and maintained.
Operational security
- Configuration and change management standard
- Supplier-defined controls
- Configuration and change management approach
-
Yes
All changes are reviewed for security impact. - Vulnerability management type
- Supplier-defined controls
- Vulnerability management approach
- Vulnerabilities are remediated in line with SOPHiA GENETICS's Vulnerability Management Policy (SG-01451).
- Protective monitoring type
- Supplier-defined controls
- Protective monitoring approach
- Information Security Operational Systems Management Policy (SG-01484) governs security operations and protective monitoring processes.
- Incident management type
- Supplier-defined controls
- Incident management approach
-
Incident management procedure exists and is documented in Security Incident Management Policy (SG-03485).
It includes a specific process to follow.
Secure development
- Approach to secure software development best practice
- Supplier-defined process
Public sector networks
- Connection to public sector networks
- No
Social Value
- Social Value
-
Social Value
- Fighting climate change
- Equal opportunity
- Wellbeing
Fighting climate change
The core of SOPHiA GENETICS' offering is a digital analysis service on an online platform.
SOPHiA GENETICS has published its ESG (Environment, Social and Governance) report
https://ir.sophiagenetics.com/static-files/5e1fbdd6-a455-4ee1-ae00-edee2816a0a7Equal opportunity
SOPHiA GENETICS has published its ESG (Environment, Social and Governance) report - https://ir.sophiagenetics.com/static-files/5e1fbdd6-a455-4ee1-ae00-edee2816a0a7
SOPHiA GENETICS creates work environments that preserve and value individuality and diversity. The diversity of our workforce stimulates employee commitment and creates an innovative, dynamic and productive culture. As of December 31, 2022, SOPHiA GENETICS had 482 employees worldwide and the male/female/undisclosed breakdown of our workforce was 59.8% / 39.8%/ 0.4% respectively. Diversity at SOPHiA GENETICS is overseen by the Nominating and Corporate Governance Committee of the Board of Directors.
Each year, SOPHiA GENETICS SAS renews its action plan to promote gender equality. Initiatives in 4 areas are taken each year: compensation, training, work/life balance and recruitment.
With the recent appointment of a trade union delegate within the company, this theme, along with working conditions, will be among the subjects to be negotiated each year.Wellbeing
In addition to our statutory obligations, we carry out an annual global satisfaction survey (engagement survey) among all our employees.
Pricing
- Price
- £79 a unit
- Discount for educational organisations
- Yes
- Free trial available
- Yes
- Description of free trial
- EVAL account access will be given in order to run the test on a limited number of analysis.
Service documents
Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format,
email the supplier at ssevdina@sophiagenetics.com.
Tell them what format you need. It will help if you say what assistive technology you use.